Post on 22-Feb-2016
description
RecognizeAwards
RussR, Jericho, The Dark Tangent
• Community Voice– Presenters did not vote.
• Recognition!– Positive (you kick ass!)– Negative (you suck!)
WHY?
• All Public Nominations• Via SurveyMonkey• Board Review– Best Nominees– Most Frequent Nominated
• Public Voting– Right here, right now
HOW?
• Started in 2011 by RussR• Originally called “Defcon Awards” (confusing)• Renamed to “Defcon Recognize Awards”• Last two years held on Sunday *snooze*• This year moved to Saturday *awake*
Past Years
• Worst Media Coverage– FOX 11 coverage of Anonymous
• Most Interesting Malware– Stuxnet
• Best Privacy Technology– Whisper Systems
• Best Open Source Software Response to an Attack or Method– BackTrack
• Best Author/Story That Captures the Hacker Mindset– Kingpin, by Kevin Poulsen
• Security Charlatan of the Year– Gregory D. Evans
DC19 - 2011
• Worst Media Person or Outlet (Print)– Water Pump Hack coverage (multiple outlets)
• Worst Media Person or Outlet (Broadcast)– (no nominations)
• Best Privacy Enhancing Tech– TOR
• Best Sec or Hack Twitter Feed– @YourAnonNews
• “Twit-Twat” – Worst Twitter Feed (Sec/Hack)– @AnonymouSabu
• “Captain Obvious” – Most common sense talk– General Keith B. Alexander, “Shared Values, Shared Responsibility”
• Security Charlatan of the Year– Ankit Fadia
DC20 – 2012Winners!
• Best Media Coverage of Hacker/Security (Any media)• Worst Media Coverage of Hacker/Security (Any media)• Best Privacy Enhancing Tech Since DC20• Worst Privacy Enhancing Tech Since DC20• Best Security or Hacker Twitter Feed• “Nit-Twit” – Worst Twitter Feed (Sec/Hack)• Best DEF CON Group Project (Approved)• Worst / Most Meaningless Security Buzzword• Biggest Law Enforcement Blunder Since DC20• Security Charlatan of the Year
DC21 - Categories
• Brian Krebs (krebsonsecurity.com)• Glenn Greenwald (guardian.co.uk)• The Register (theregister.co.uk)• SecurityWeek (securityweek.com)• RT.com (for Snowden coverage)• Kevin Poulsen @Wired (submitted by RussR)
Best Media Coverage of Hackers or Security (Any media)
• readwrite – World War III• Marie Claire: When Geeks Attack• Meet the Press: David Gregory• The Mainichi: Correction• InfoWorld: Confessions of a Cyber Warrior
Worst Media Coverage of Hackers or Security (Any media)
readwrite: World War III Is Already Here - And We're Losing
Marie Claire: When Geeks Attack
Apparently these are the “brogrammers” mentioned.
Meet the Press: David Gregory
To the extent you have aided and abetted Snowden, even in his current movements. Why shouldn’t you, Mr. Greenwald, be
charged with a crime?
• Mainichi English version reports on the National Police Agency of Japan asking ISPs to block Tor access.• Turns out actually it was a "voluntary recommendation to content providers" and not a mandatory request to ISPs.• The article got picked up by Wired.com UK and then ArsTechnica, The Register and spread like wildfire.• … after receiving numerous corrections from the Japanese readers and issued a correction…
InfoWorld: Confessions of a Cyber Warrior
• Ghostery (http://www.ghostery.com/)• Disconnect2 (https://disconnect.me/)• Twitter 2-Factor Auth (https://twitter.com/account/settings)
• "Onion Pi" Rasberry (http://learn.adafruit.com/onion-pi/)
Best Privacy Enhancing Technology Since DEF CON 20
• PRISM– (announced since DC20!)
• Ciphercloud– “Bogus security claims”– “Abusing DMCA as defense”
• Gmail– (no reason given)
• WifiSugar– “Proof is in the website”
Worst Privacy Enhancing Technology Since DEF CON 20
(Image not meant to be influencing)
• @ioerror 46,882 49,090• @moxie 3,541 22,141• @YourAnonNews 68,381 1,173,985• @spacerog 15,976 5,370• @TheHackersNews 16,673 94,345• @HackerHuntress 23,250 2,933
Best Twitter FeedTweets Followers
• @th3j35t3r 5,685 56,934• @Wh1t3Rabbit 36,674 8,504• @asherahresearch 49,446 3,017• @GregoryDEvans 12,047 37,101 *• @adainitiative 2,574 3,447
Nit-Twit AwardTweets Followers
* Gregory D. Evans Pays For Twitter Followershttp://attrition.org/errata/charlatan/gregory_evans/evans31/
• Honeypot that can bite: Reverse Penetration– http://media.blackhat.com/eu-13/briefings/Sintsov/bh-eu-13-honeypot-sintsov-wp.pdf
• MITM All The IPv6 Things– http://www.defcon.org/html/defcon-21/dc-21-speakers.html
Best Project by an Approved DEF CON Group
(P.S. Honeypot got 9 votes. MITM got 1. #hackthevote)
• APT• Cloud• CEH• Ada Initiative
Worst Security Buzz Word Since DEF CON 20
• Anonymous• Cyber• China• Snowden
• PRISM / NSA Snooping• Weev / @rabite• Aaron Schwartz Case• CISPA
Biggest Law Enforcement / Legal System Blunder Since DC 20
(We think it is fair to declare all of these winners of this category.)
• Best Con Awards Show– The Pwnies
• Most Cleverist and Funniest Security Twitter Feed <3– @SecurityHumor
• Best Book on Phreaking This Year– Exploding the Phone: The Untold Story of the Teenagers and Outlaws who
Hacked Ma Bell• Internet/Hacker/Security Historian of the Year
– Jason Scott• Most prolific tweeter, most desperate for an award
– @0xabad1dea
Unofficial Awards(chosen by us Jericho)
• Ankit Fadia *• Rahul Tyagi *• Kim ‘DotCom’ Shmitz *• Fortinet Security• Chris Russo
Security Charlatan AwardNominations
(Appears on attrition.org Errata page)
• Best Media Coverage of Hacker/Security (Any media)– RT.com
• Worst Media Coverage of Hacker/Security (Any media)– readwrite
• Best Privacy Enhancing Tech Since DC20– Onion Pi
• Worst Privacy Enhancing Tech Since DC20– PRISM
• Best Security or Hacker Twitter Feed– @spacerog
DC21 - Winners
• “Nit-Twit” – Worst Twitter Feed (Sec/Hack)– The Ada Initiative / @adainitiative
• Best DEF CON Group Project (Approved)– Honeypot that can bite
• Worst / Most Meaningless Security Buzzword– “cyber”
• Biggest Law Enforcement Blunder Since DC20– (All Nominations, Joint Win)
• Security Charlatan of the Year– Kim “DotCom” Shmitz
DC21 - Winners